SecurityWeek Briefing.

"Thousands of SaaS Apps could still be susceptible to nOAuth."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 25 June 2025, 1659 UTC.

Content and Source via email subscription from https://feedly.com.

 https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Ffeeds.feedburner.com%2FSecurityweek

Please check email link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

SecurityWeek

88K followers42 articles per week

#security#tech

23

Today

Thousands of SaaS Apps Could Still Be Susceptible to nOAuth

by Kevin Townsend / 3h

New research suggests more than 10,000 SaaS apps could remain vulnerable to a nOAuth variant despite the basic issue being disclosed in June 2023. The post appeared first on SecurityWeek .

Microsoft Offers Free Windows 10 Extended Security Update Options as EOS Nears

Windows 10 free security updates available

•

by Eduard Kovacs / 3h

With end of support scheduled for October 2025, Windows 10 users will be able to continue receiving important security updates. The post appeared first on SecurityWeek .

Hackers Abuse ConnectWise to Hide Malware

5 TTPs

•

by Ionut Arghire / 4h

•

ConnectWise exploited for signed malware

G Data has observed a surge in malware infections originating from ConnectWise applications with modified certificate tables. The post appeared first on SecurityWeek .

SonicWall Warns of Trojanized NetExtender Stealing User Information

4 TTPs

•

by Ionut Arghire / 5h

•

Fake SonicWall app steals credentials

SonicWall says a modified version of the legitimate NetExtender application contains information-stealing code. The post appeared first on SecurityWeek .

New Vulnerabilities Expose Millions of Brother Printers to Hacking

CVE-2024-51978 & 7 others

•

by Eduard Kovacs / 5h

Rapid7 has found several serious vulnerabilities affecting over 700 printer models from Brother and other vendors. The post appeared first on SecurityWeek .

Why Sincerity Is a Strategic Asset in Cybersecurity

by Joshua Goldfarb / 5h

Strong security doesn’t just rely on tools—it starts with trust, clarity, and sincerity from the top down. The post appeared first on SecurityWeek .

Code Execution Vulnerability Patched in GitHub Enterprise Server

3 TTPs

•

by Ionut Arghire / 6h

A high-severity vulnerability in GitHub Enterprise Server could have allowed remote attackers to execute arbitrary code. The post appeared first on SecurityWeek .

Chrome 138, Firefox 140 Patch Multiple Vulnerabilities

4 TTPs

•

by Ionut Arghire / 6h

Chrome 138 and Firefox 140 are rolling out with fixes for two dozen vulnerabilities, including high-severity memory safety issues. The post appeared first on SecurityWeek .

Yesterday

Mainline Health, Select Medical Each Disclose Data Breaches Impacting 100,000 People

2 TTPs

•

by Eduard Kovacs / 7h

•

Mainline Health Systems data breach

Mainline Health and Select Medical Holdings have suffered data breaches that affect more than 100,000 individuals. The post appeared first on SecurityWeek .

Russian APT Hits Ukrainian Government With New Malware via Signal

10 TTPs

•

by Ionut Arghire / 9h

•

APT28 uses Signal for malware attacks

Russia-linked APT28 deployed new malware against Ukrainian government targets through malicious documents sent via Signal chats. The post appeared first on SecurityWeek .

Siemens Notifies Customers of Microsoft Defender Antivirus Issue

by Eduard Kovacs / 1d

Siemens is working with Microsoft to address a Defender Antivirus problem that can lead to no malware alerts or plant disruptions. The post appeared first on SecurityWeek .

Identity Is the New Perimeter: Why Proofing and Verification Are Business Imperatives

by Torsten George / 1d

The future of secure digital engagement depends on continuous identity verification and proofing that can scale with risk. The post appeared first on SecurityWeek .

Prometei Botnet Activity Spikes

20 TTPs

•

by Ionut Arghire / 1d

•

Prometei botnet resurfaces with enhancements

Palo Alto Networks has observed a spike in Prometei activity since March 2025, pointing to a resurgence of the botnet. The post appeared first on SecurityWeek .

Jun 23, 2025

Chinese APT Hacking Routers to Build Espionage Infrastructure

by Ionut Arghire / 1d

A Chinese APT has been infecting SOHO routers with the ShortLeash backdoor to build stealthy espionage infrastructure. The post appeared first on SecurityWeek .

Photo-Stealing Spyware Sneaks Into Apple App Store, Google Play

Command and Control (Enterprise TA0011)

•

by Ionut Arghire / 1d

•

SparkKitty spyware targets mobile devices

Newly discovered spyware has sneaked into Apple’s App Store and Google Play to steal images from users’ mobile devices. The post appeared first on SecurityWeek .

Apple, Netflix, Microsoft Sites ‘Hacked’ for Tech Support Scams

by Eduard Kovacs / 1d

Tech support scammers are using sponsored ads and search parameter injection to trick users into calling them. The post appeared first on SecurityWeek .

North Korean Hackers Take Over Victims’ Systems Using Zoom Meeting

10 TTPs

•

by Ionut Arghire / 2d

•

North Korean hackers use deepfakes

North Korean hackers employ social engineering to trick Zoom Meeting participants into executing system-takeover commands. The post appeared first on SecurityWeek .

China’s Salt Typhoon Hackers Target Canadian Telecom Firms

Discovery (Enterprise TA0007)

•

by Eduard Kovacs / 2d

Canada’s Centre for Cyber Security and the FBI warn of Chinese hackers targeting telecommunications and other companies in Canada. The post appeared first on SecurityWeek .

New AI Jailbreak Bypasses Guardrails With Ease

by Kevin Townsend / 2d

New "Echo Chamber" attack bypasses advanced LLM safeguards by subtly manipulating conversational context, proving highly effective across leading AI models. The post appeared first on SecurityWeek .

Critical Authentication Bypass Flaw Patched in Teleport

3 TTPs

•

by Ionut Arghire / 2d

A critical-severity vulnerability in Teleport could allow remote attackers to bypass SSH authentication and access managed systems. The post appeared first on SecurityWeek .

743,000 Impacted by McLaren Health Care Data Breach

2 TTPs

•

by Ionut Arghire / 2d

The personal information of 743,000 individuals was compromised in a 2024 ransomware attack on McLaren Health Care. The post appeared first on SecurityWeek .

US Braces for Cyberattacks After Bombing Iranian Nuclear Sites

2 TTPs

•

22by Eduard Kovacs / 2d

•

US prepares for Iran retaliation

Iranian hackers are expected to intensify cyberattacks against the US after the recent air strikes on Iran’s nuclear sites. The post appeared first on SecurityWeek .

Jun 22, 2025

Steelmaker Nucor Says Hackers Stole Data in Recent Attack

2 TTPs

•

by Eduard Kovacs / 2d

Nucor has shared an update on the impact of the recent cyberattack and confirmed that some data has been taken from its IT systems. The post appeared first on SecurityWeek .

End of feed